KBR
Cyber Security RMF Support with Security Clearance
KBR, El Segundo, California, United States, 90245
Overview
Cyber Security RMF Support Belong. Connect. Grow. with KBR! KBR's National Security Solutions team provides high–end engineering and advanced technology solutions to our customers in the intelligence and national security communities. In this position, your work will have a profound impact on the country's most critical role – protecting our national security. KBR (formerly LinQuest) is the prime contractor on the MSEIT contract. By applying to this position, you are in consideration for KBR employment. However, you also have the option to be hired by one of our subcontractor teammates. You will join a systems engineering team defining the next generation of space communication systems supporting US Space Force (USSF) satellite communications. You will support Systems Engineering & Integration (SEI) activities in a multidisciplinary and collaborative environment. You will interface and collaborate with SEI team members, contractors, government civilians and members of the USSF. You will lead and support several working groups responsible for leading technical discussion, resolve and identify risk, requirement gaps, developing briefings, writing, and tracking action items, and authoring meeting minutes. The MILSATCOM Systems Engineering, Integration, and Test (MSEIT) effort provides leading edge Systems Engineering & Integration (SEI) for the US Space Force\'s Space Systems Center (SSC). We support the Space Force\'s acquisition of state of the art satellite communications systems, providing global secure, survivable, and protected communications for our nation\'s warfighters. We seek technical individuals who will thrive in a highly collaborative work environment of small teams, using the most modern tools and methodologies to tackle the challenges of integrating complex space and ground communications systems.
Why Join Us? Innovative Projects: KBR\'s work is at the forefront of engineering, logistics, operations, science, program management, mission IT and cybersecurity solutions. Collaborative Environment: Be part of a dynamic team that thrives on collaboration and innovation, fostering a supportive and intellectually stimulating workplace. Impactful Work: Your contributions will be pivotal in designing and optimizing defense systems that ensure national security and shape the future of space defense.
Responsibilities
Support the SSC with ensuring security, quality, timeliness, mission partner support, completeness, and regulatory compliance of ATO RMF documentation
Experience creating, editing and reviewing RMF, policy documents to implement administrative controls for each of the Rev 5 control families
Experience developing and reviewing and performing self–assessments of control narratives and System Control Traceability Matrix (SCTM)
Experiencing reviewing and editing ATO artifacts such as Ports, Protocol and Services, matrix and Hardware/Software lists
Proposing, coordinating, implementing, and enforcing all Department of the Air Force information system security policies, standards, and methodologies
Familiarity with vulnerability assessments using the Assured Compliance Assessment Solution (ACAS), DISA STIG, and the SCAP Compliance Checker, incorporating automated Benchmarks
Knowledge of evaluating operating systems and network devices security configuration in accordance with DISA STIG guidance
Performing security control continuous monitoring, security audits, risk analysis and developing mitigation strategies for DoD information systems
Ensures software, hardware, and firmware complies with appropriate security configuration guidelines
Ensures proper configuration management procedures are followed prior to implementation and coordinate changes with the ISSM, SCA, and/or Wing Cybersecurity office
During system development, recommends protective or corrective measures in coordination with the ISSM when a security incident or vulnerability is discovered
During system development, reports security incidents or vulnerabilities to the system–level ISSM and wing cybersecurity office according to AFI 17–203
Recommends exceptions, deviations, or waivers to cybersecurity requirements
Preparing certification letters and MOA, Authorization to Connect (ATC) packages, Interconnection Security Agreement (SIA), and Security Impact Assessments with system owners for interface and networking implementations
Support the following responsibilities: SCA and STIG curation to DoD/DAF/USSF baselines, audit standards, and POAM
Attend cleared expert threat briefings; oversee security program design, incident response plans, cyber risk assessments, attack surface assessments; investigate security breaches and conduct tabletop exercises
Completes and maintains required cybersecurity certification in accordance with AFMAN 17–1303
Qualifications
Location: Onsite
Travel Requirements: Minimal
Working Hours: Standard
Required: An active Secret clearance
Bachelor\'s degree in engineering, physics, chemistry, mathematics, computer science, information systems, information technology, or related field
Minimum 2 years of continuous Information Systems, Information Assurance/Cybersecurity experience
Understanding and working knowledge of RMF Rev 5 and DODI 8510.01
2+ years of experience with security controls and implementation per CNSSI 1253, NIST SP 800-53, and JSIG
2+ years of experience with vulnerability assessments using ACAS, DISA STIG, SCAP, and automated benchmarks
2+ years of experience using SolarWinds and Splunk or equivalent tools
Extensive experience with Linux/Unix CLI and regular expression queries
Ability to read and extract Cisco configuration files
2+ years of experience implementing OS and network device security configurations per DISA STIG
2+ years of experience performing security control continuous monitoring, security audits, risk analysis and mitigation
Experience identifying CNIs and NIAP-certified technologies and the DISA APL
Experience in a military cybersecurity role with tactical or enterprise systems
DoD Approved Baseline Certification as Information Assurance Manager Level II (e.g., CISSP, CASP+)
Desired: Master\'s in Computer Science/Engineering with emphasis in Cyber Security
5+ years in Cyber Security and in System Engineering Architecture/Design
Linux and Cisco certifications; DoD Space program experience; ST&E
Compensation and Benefits TS/SCI Clearance
Basic Compensation: $135,000–$168,000 in California. The offered rate will be based on the candidate\'s knowledge, skills, abilities and/or experience and internal parity.
KBR Benefits include a selection of competitive lifestyle benefits (401K with company match, medical, dental, vision, life insurance, AD&D, FSA, disability, PTO, flexible work schedule). We support career advancement through training and development. KBR is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, disability, sex, sexual orientation, gender identity or expression, age, national origin, veteran status, genetic information, union status and/or beliefs, or any other characteristic protected by law.
#J-18808-Ljbffr
Why Join Us? Innovative Projects: KBR\'s work is at the forefront of engineering, logistics, operations, science, program management, mission IT and cybersecurity solutions. Collaborative Environment: Be part of a dynamic team that thrives on collaboration and innovation, fostering a supportive and intellectually stimulating workplace. Impactful Work: Your contributions will be pivotal in designing and optimizing defense systems that ensure national security and shape the future of space defense.
Responsibilities
Support the SSC with ensuring security, quality, timeliness, mission partner support, completeness, and regulatory compliance of ATO RMF documentation
Experience creating, editing and reviewing RMF, policy documents to implement administrative controls for each of the Rev 5 control families
Experience developing and reviewing and performing self–assessments of control narratives and System Control Traceability Matrix (SCTM)
Experiencing reviewing and editing ATO artifacts such as Ports, Protocol and Services, matrix and Hardware/Software lists
Proposing, coordinating, implementing, and enforcing all Department of the Air Force information system security policies, standards, and methodologies
Familiarity with vulnerability assessments using the Assured Compliance Assessment Solution (ACAS), DISA STIG, and the SCAP Compliance Checker, incorporating automated Benchmarks
Knowledge of evaluating operating systems and network devices security configuration in accordance with DISA STIG guidance
Performing security control continuous monitoring, security audits, risk analysis and developing mitigation strategies for DoD information systems
Ensures software, hardware, and firmware complies with appropriate security configuration guidelines
Ensures proper configuration management procedures are followed prior to implementation and coordinate changes with the ISSM, SCA, and/or Wing Cybersecurity office
During system development, recommends protective or corrective measures in coordination with the ISSM when a security incident or vulnerability is discovered
During system development, reports security incidents or vulnerabilities to the system–level ISSM and wing cybersecurity office according to AFI 17–203
Recommends exceptions, deviations, or waivers to cybersecurity requirements
Preparing certification letters and MOA, Authorization to Connect (ATC) packages, Interconnection Security Agreement (SIA), and Security Impact Assessments with system owners for interface and networking implementations
Support the following responsibilities: SCA and STIG curation to DoD/DAF/USSF baselines, audit standards, and POAM
Attend cleared expert threat briefings; oversee security program design, incident response plans, cyber risk assessments, attack surface assessments; investigate security breaches and conduct tabletop exercises
Completes and maintains required cybersecurity certification in accordance with AFMAN 17–1303
Qualifications
Location: Onsite
Travel Requirements: Minimal
Working Hours: Standard
Required: An active Secret clearance
Bachelor\'s degree in engineering, physics, chemistry, mathematics, computer science, information systems, information technology, or related field
Minimum 2 years of continuous Information Systems, Information Assurance/Cybersecurity experience
Understanding and working knowledge of RMF Rev 5 and DODI 8510.01
2+ years of experience with security controls and implementation per CNSSI 1253, NIST SP 800-53, and JSIG
2+ years of experience with vulnerability assessments using ACAS, DISA STIG, SCAP, and automated benchmarks
2+ years of experience using SolarWinds and Splunk or equivalent tools
Extensive experience with Linux/Unix CLI and regular expression queries
Ability to read and extract Cisco configuration files
2+ years of experience implementing OS and network device security configurations per DISA STIG
2+ years of experience performing security control continuous monitoring, security audits, risk analysis and mitigation
Experience identifying CNIs and NIAP-certified technologies and the DISA APL
Experience in a military cybersecurity role with tactical or enterprise systems
DoD Approved Baseline Certification as Information Assurance Manager Level II (e.g., CISSP, CASP+)
Desired: Master\'s in Computer Science/Engineering with emphasis in Cyber Security
5+ years in Cyber Security and in System Engineering Architecture/Design
Linux and Cisco certifications; DoD Space program experience; ST&E
Compensation and Benefits TS/SCI Clearance
Basic Compensation: $135,000–$168,000 in California. The offered rate will be based on the candidate\'s knowledge, skills, abilities and/or experience and internal parity.
KBR Benefits include a selection of competitive lifestyle benefits (401K with company match, medical, dental, vision, life insurance, AD&D, FSA, disability, PTO, flexible work schedule). We support career advancement through training and development. KBR is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, disability, sex, sexual orientation, gender identity or expression, age, national origin, veteran status, genetic information, union status and/or beliefs, or any other characteristic protected by law.
#J-18808-Ljbffr